CVE-2014-5270

Libgcrypt before 1.5.4, as used in GnuPG and other products, does not properly perform ciphertext normalization and ciphertext randomization, which makes it easier for physically proximate attackers to conduct key-extraction attacks by leveraging the ability to collect voltage data from exposed metal, a different vector than CVE-2013-4576.

CVSS v2.0 2.1 LOW

2.1^/10

CVSS v2.0 : LOW

Vector : AV:L/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 3.9 / Impact : 2.9

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://lists.gnupg.org/pipermail/gnupg-announce/2014q3/000352.html	Patch Vendor Advisory
http://www.cs.tau.ac.il/~tromer/handsoff/	Technical Description
http://openwall.com/lists/oss-security/2014/08/16/2	Mailing List Third Party Advisory
http://www.debian.org/security/2014/dsa-3073	Third Party Advisory
http://www.debian.org/security/2014/dsa-3024

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:gnupg:libgcrypt:1.5.0:::::::*
	cpe:2.3:a:gnupg:libgcrypt:1.4.6:::::::*
	cpe:2.3:a:gnupg:libgcrypt::::::::
	cpe:2.3:a:gnupg:libgcrypt:1.4.3:::::::*
	cpe:2.3:a:gnupg:libgcrypt:1.4.0:::::::*
	cpe:2.3:a:gnupg:libgcrypt:1.4.5:::::::*
	cpe:2.3:a:gnupg:libgcrypt:1.4.4:::::::*
	cpe:2.3:a:gnupg:libgcrypt:1.5.2:::::::*
	cpe:2.3:a:gnupg:libgcrypt:1.5.1:::::::*

Configuration 2 (hide)

cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*

Information

Published : 2014-10-09 18:55

Updated : 2017-11-03 18:29

NVD link : CVE-2014-5270

Mitre link : CVE-2014-5270

JSON object : View

CWE

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

Advertisement

Products Affected

debian

debian_linux

gnupg

libgcrypt

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://lists.gnupg.org/pipermail/gnupg-announce/2014q3/000352.html", "name": "[gnupg-announce] 20140808 [security fix] Libgcrypt and GnuPG", "tags": ["Patch", "Vendor Advisory"], "refsource": "MLIST"}, {"url": "http://www.cs.tau.ac.il/~tromer/handsoff/", "name": "http://www.cs.tau.ac.il/~tromer/handsoff/", "tags": ["Technical Description"], "refsource": "MISC"}, {"url": "http://openwall.com/lists/oss-security/2014/08/16/2", "name": "[oss-security] 20140816 Re: CVE request: libgcrypt, ELGAMAL side-channel attack", "tags": ["Mailing List", "Third Party Advisory"], "refsource": "MLIST"}, {"url": "http://www.debian.org/security/2014/dsa-3073", "name": "DSA-3073", "tags": ["Third Party Advisory"], "refsource": "DEBIAN"}, {"url": "http://www.debian.org/security/2014/dsa-3024", "name": "DSA-3024", "tags": [], "refsource": "DEBIAN"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Libgcrypt before 1.5.4, as used in GnuPG and other products, does not properly perform ciphertext normalization and ciphertext randomization, which makes it easier for physically proximate attackers to conduct key-extraction attacks by leveraging the ability to collect voltage data from exposed metal, a different vector than CVE-2013-4576."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-200"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2014-5270", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 2.1, "accessVector": "LOCAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "severity": "LOW", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 3.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2014-10-10T01:55Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:gnupg:libgcrypt:1.5.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnupg:libgcrypt:1.4.6:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnupg:libgcrypt:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "1.5.3"}, {"cpe23Uri": "cpe:2.3:a:gnupg:libgcrypt:1.4.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnupg:libgcrypt:1.4.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnupg:libgcrypt:1.4.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnupg:libgcrypt:1.4.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnupg:libgcrypt:1.5.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gnupg:libgcrypt:1.5.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-11-04T01:29Z"}